From owner-freebsd-questions@FreeBSD.ORG  Wed Jul 17 21:48:43 2013
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id 71BF725D
 for <freebsd-questions@freebsd.org>; Wed, 17 Jul 2013 21:48:43 +0000 (UTC)
 (envelope-from jhs@berklix.com)
Received: from land.berklix.org (land.berklix.org [144.76.10.75])
 by mx1.freebsd.org (Postfix) with ESMTP id 07036D87
 for <freebsd-questions@freebsd.org>; Wed, 17 Jul 2013 21:48:42 +0000 (UTC)
Received: from park.js.berklix.net (p5DCBD232.dip0.t-ipconnect.de
 [93.203.210.50]) (authenticated bits=128)
 by land.berklix.org (8.14.5/8.14.5) with ESMTP id r6HLmfjH098122;
 Wed, 17 Jul 2013 21:48:41 GMT (envelope-from jhs@berklix.com)
Received: from fire.js.berklix.net (fire.js.berklix.net [192.168.91.41])
 by park.js.berklix.net (8.14.3/8.14.3) with ESMTP id r6HLmUSg005919;
 Wed, 17 Jul 2013 23:48:30 +0200 (CEST)
 (envelope-from jhs@berklix.com)
Received: from fire.js.berklix.net (localhost [127.0.0.1])
 by fire.js.berklix.net (8.14.4/8.14.4) with ESMTP id r6HLm6Xt016294;
 Wed, 17 Jul 2013 23:48:26 +0200 (CEST)
 (envelope-from jhs@fire.js.berklix.net)
Message-Id: <201307172148.r6HLm6Xt016294@fire.js.berklix.net>
Subject: Re: Help to secure my FreeBSD/Apache installation 
From: "Julian H. Stacey" <jhs@berklix.com>
Organization: http://berklix.com BSD Unix Linux Consultancy, Munich Germany
User-agent: EXMH on FreeBSD http://berklix.com/free/
X-URL: http://www.berklix.com
In-reply-to: Your message "Wed, 17 Jul 2013 23:38:51 +0200."
Date: Wed, 17 Jul 2013 23:48:06 +0200
Sender: jhs@berklix.com
Cc: freebsd-questions <freebsd-questions@freebsd.org>,
 Andy Wodfer <wodfer@gmail.com>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2013 21:48:43 -0000

Hi, Reference:
> From:		"Julian H. Stacey" <jhs@berklix.com> 
> Date:		Wed, 17 Jul 2013 23:38:51 +0200 

"Julian H. Stacey" wrote:
> Hi, Reference:
> > From:		Andy Wodfer <wodfer@gmail.com> 
> > Date:		Wed, 17 Jul 2013 23:11:27 +0200 
> 
> Andy Wodfer wrote:
> > Hi everybody!
> > 
> > I'm running a server on FreeBSD 8.1 STABLE (apache 2.2.16, mysql 5.1.50,
> 
> To quote front page of http://www.freebsd.org:
>     * Production: 9.1
>     * Legacy: 8.4
> My net. con. is too slow right now to check this for you, but look
> yourself, I bet FreeBSD-8.1 was long ago declared by security-officer@
> as not supported as too old,

Re version numbers:
  Your 8.1 STABLE does not exist !
  Only 8 Stable, 8.1-RELEASE, 8.2-RELEASE, etc.
  
  http://www.freebsd.org/security/unsupported.html
  8.1 & 8.2 not supported. 
  
  http://www.freebsd.org/security/index.html#sup
  
  9.1-RELEASE has /usr/ports/www/apache22/work/httpd-2.2.23

> Upgrade to 8.4 or 9.1, 
> Reinstall new versions of all ports,
> cd /usr/ports/ports-mgmt/portaudit  ; make install ; rehash ; portaudit ; 
> # (Which is in 9.1 & not in 8.2) 
> port-audit

Cheers,
Julian
-- 
Julian Stacey, BSD Unix Linux C Sys Eng Consultant, Munich http://berklix.com
 Reply below not above, like a play script.  Indent old text with "> ".
 Send plain text.  No quoted-printable, HTML, base64, multipart/alternative.